exploit the possibilities
Showing 1 - 25 of 32 RSS Feed

Files Date: 2008-02-04

bcoosexoops-xss.txt
Posted Feb 4, 2008
Authored by Lostmon | Site lostmon.blogspot.com

Both the bcoos and E-xoops DevTracker modules are susceptible to cross site scripting vulnerabilities. This affects bcoos versions 1.1.11 and below and E-xoops versions 1.0.8 and below.

tags | exploit, vulnerability, xss
MD5 | 2ff1ae8d47a1c7bdf55b748aa68d0f22
DSECRG-08-011.txt
Posted Feb 4, 2008
Authored by Sh2kerr, Stas Svistunovich | Site dsecrg.com

The Astrosoft HelpDesk suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 78aa922a01deb2b5ba31024e2bb3e355
DSECRG-08-010.txt
Posted Feb 4, 2008
Authored by Sh2kerr, Stas Svistunovich | Site dsecrg.com

The VHD Web Pack version 2.0 suffers from a local file inclusion vulnerability.

tags | exploit, web, local, file inclusion
MD5 | cbd3e3a2fc2527b231b7813202fb31a7
DSECRG-08-009.txt
Posted Feb 4, 2008
Authored by Sh2kerr, Stas Svistunovich | Site dsecrg.com

XOOPS version 2.0.18 suffers from local file inclusion and URL redirection vulnerabilities.

tags | exploit, local, vulnerability, file inclusion
MD5 | fb76134961718355d10eba6eec8d8c87
DSECRG-08-008.txt
Posted Feb 4, 2008
Authored by Sh2kerr, Stas Svistunovich | Site dsecrg.com

Txp CMS version 4.0.5 suffers from denial of service and cross site scripting vulnerabilities.

tags | exploit, denial of service, vulnerability, xss
MD5 | e1001219ec55f03a7fe81c20c9281f66
Secunia Security Advisory 28774
Posted Feb 4, 2008
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Crackers_Child has reported a vulnerability in Domain Trader, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 324bd3ed360c1dceee9b31a6bca9978d
iDEFENSE Security Advisory 2008-01-31.2
Posted Feb 4, 2008
Authored by iDefense Labs | Site idefense.com

iDefense Security Advisory 01.31.08 - Local exploitation of a file creation vulnerability in IBM Corp.'s Informix Dynamic Server allows attackers to elevate privileges to root. The set-uid root "onedcu" command requires six parameters to be specified when it is executed. The second parameter is a "Trace" file that this program will open and write to with elevated privileges.

tags | advisory, local, root
advisories | CVE-2008-0368
MD5 | 86e2218851920479b4f3aec7120e1fee
iDEFENSE Security Advisory 2008-01-31.1
Posted Feb 4, 2008
Authored by iDefense Labs | Site idefense.com

iDefense Security Advisory 01.31.08 - Local exploitation of a file creation vulnerability in IBM Corp.'s Informix Dynamic Server allows attackers to elevate privileges to root. When the SQLIDEBUG environment variable is set, several set-uid binaries will log debugging information to the specified file. iDefense confirmed the existence of this vulnerability in IBM Corp.'s Informix Dynamic Server version 10.00 UC6TL installed on a Linux system. Other versions are also suspected as vulnerable. Versions for other supported Unix systems should also be considered vulnerable.

tags | advisory, local, root
systems | linux, unix
advisories | CVE-2008-0369
MD5 | fdfce2c86d8edbe276b7745ff0819a4a
Core Security Technologies Advisory 2007.1218
Posted Feb 4, 2008
Authored by Core Security Technologies, Damian Frizza, Alfredo Ortego | Site coresecurity.com

Core Security Technologies Advisory - The MPlayer package is vulnerable to a buffer overflow attack, which can be exploited by malicious remote attackers. The vulnerability is due to MPlayer not properly sanitizing certain tags on a FLAC file before using them to index an array on the stack. This can be exploited to execute arbitrary commands by opening a specially crafted file.

tags | advisory, remote, overflow, arbitrary
advisories | CVE-2008-0486
MD5 | 34ecc4e332eabd9c69806ef8fe08163e
CORE-2008-122.txt
Posted Feb 4, 2008
Authored by Felipe Manzano, Anibal Sacco | Site coresecurity.com

Core Security Technologies Advisory - The MPlayer package is vulnerable to an arbitrary pointer dereference vulnerability, which can be exploited by malicious remote attackers to compromise a user's system. The vulnerability is caused by the MPlayer libmpdemux ('demux_mov.c') library not properly sanitizing certain tags on a MOV file before using them to index an array on the heap. This can be exploited to execute arbitrary commands by opening a specially crafted file.

tags | advisory, remote, arbitrary
advisories | CVE-2008-0485
MD5 | 5ca3b71e53a087bd7778f56ea27ae12f
OPENADS-SA-2008-001.txt
Posted Feb 4, 2008
Authored by Matteo Beccati | Site openads.org

Openads versions prior to 2.4.3 suffer from a PHP code injection and execution vulnerability.

tags | advisory, php
MD5 | becc113ebbe465552df6e7930e4e50ea
Ubuntu Security Notice 574-1
Posted Feb 4, 2008
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 574-1 - A massive slew of vulnerabilities relating to the linux-source-2.6.17/20/22 packages have been addressed.

tags | advisory, vulnerability
systems | linux, ubuntu
advisories | CVE-2006-6058, CVE-2007-3107, CVE-2007-4567, CVE-2007-4849, CVE-2007-4997, CVE-2007-5093, CVE-2007-5500, CVE-2007-5501, CVE-2007-5966, CVE-2007-6063, CVE-2007-6151, CVE-2007-6206, CVE-2007-6417, CVE-2008-0001
MD5 | e768f5816148d5f5d28111789684935c
microtik-dos.txt
Posted Feb 4, 2008
Authored by ShadOS | Site hellknights.void.ru

MicroTik RouterOS version 3.2 and below SNMPd denial of service exploit.

tags | exploit, denial of service
MD5 | 4d53afe7855f4980e15892d47a24d3b5
joomlamarket-sql.txt
Posted Feb 4, 2008
Authored by SoSo H H

The Joomla component Marketplace version 1.1.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | cbe31c6eb98fb0473e8b9629f83a382c
ablog-sqlxss.txt
Posted Feb 4, 2008
Authored by IRCRASH | Site ircrash.com

A-Blog version 0.2 remote SQL injection exploit along with cross site scripting vulnerability details.

tags | exploit, remote, xss, sql injection
MD5 | 00548d4444e4f5e3db374e787c1cd18d
joomlamosdir-sql.txt
Posted Feb 4, 2008
Authored by GolD_M | Site tryag.cc

The Joomla component mosDirectory version 2.3.2 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 731abb8b22b4d6b0b784288d8050edc7
blogphp-sql.txt
Posted Feb 4, 2008
Authored by IRCRASH | Site ircrash.com

BlogPHP version 0.2 remote SQL injection exploit along with cross site scripting vulnerability details.

tags | exploit, remote, xss, sql injection
MD5 | 30fb4b685a4f9b02c1907ac664083eed
sejoon-overflow.txt
Posted Feb 4, 2008
Site Plan-S.cn

Sejoong Namo ActiveSquare 6 ActiveX buffer overflow exploit that makes use of NamoInstaller.dll.

tags | exploit, overflow, activex
MD5 | d0b1581951aafdbc325a7d91e353cf47
facebook-overflow.txt
Posted Feb 4, 2008
Authored by Elazar Broad

FaceBook PhotoUploader buffer overflow exploit that takes advantage of ImageUploader4.ocx version 4.5.57.0.

tags | exploit, overflow
MD5 | 66613eb32b726de45bb0c2f23347268c
joomlashambo2-sql.txt
Posted Feb 4, 2008
Authored by S@BUN | Site hackturkiye.com

The Joomla com_shambo2 component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 676bef2d6d484e4c222066dfee1b0f61
joomlaawesom-sql.txt
Posted Feb 4, 2008
Authored by S@BUN | Site hackturkiye.com

The Joomla com_awesom component versions 0.3.2 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
MD5 | 995fbf07a77cd1119a7d29f8b4c71686
itechbids-sql.txt
Posted Feb 4, 2008
Authored by QTRinux | Site root-qtr.com

ITechBids version 5.0 suffers from a remote SQL injection vulnerability in bidhistory.php.

tags | exploit, remote, php, sql injection
MD5 | e65cbdcb0acae04b71b11a2f6dfd8da3
aps-overflow.txt
Posted Feb 4, 2008
Authored by L4teral

Anon Proxy Server version 0.102 and below suffer from a remote buffer overflow vulnerability.

tags | advisory, remote, overflow
MD5 | 8e9f78c5cdd54f2a3eeb489f9ee0570b
phpshop-sql.txt
Posted Feb 4, 2008
Authored by theredc0ders

PHPShop version 0.8.1 suffers from a bypass vulnerability that allows for SQL injection attacks.

tags | exploit, sql injection, bypass
MD5 | 291ee267a938b85ec252a270ca898e49
yahoomusic-overflow4.txt
Posted Feb 4, 2008
Authored by Elazar Broad

Yahoo! Music Jukebox AddButton() ActiveX buffer overflow exploit.

tags | exploit, overflow, activex
MD5 | 471b8482045b453525a7934f34498c0b
Page 1 of 2
Back12Next

File Archive:

May 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    14 Files
  • 2
    May 2nd
    3 Files
  • 3
    May 3rd
    1 Files
  • 4
    May 4th
    18 Files
  • 5
    May 5th
    15 Files
  • 6
    May 6th
    21 Files
  • 7
    May 7th
    15 Files
  • 8
    May 8th
    19 Files
  • 9
    May 9th
    1 Files
  • 10
    May 10th
    2 Files
  • 11
    May 11th
    18 Files
  • 12
    May 12th
    39 Files
  • 13
    May 13th
    15 Files
  • 14
    May 14th
    17 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    2 Files
  • 17
    May 17th
    2 Files
  • 18
    May 18th
    15 Files
  • 19
    May 19th
    21 Files
  • 20
    May 20th
    15 Files
  • 21
    May 21st
    15 Files
  • 22
    May 22nd
    6 Files
  • 23
    May 23rd
    1 Files
  • 24
    May 24th
    1 Files
  • 25
    May 25th
    2 Files
  • 26
    May 26th
    23 Files
  • 27
    May 27th
    13 Files
  • 28
    May 28th
    18 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close